Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/f8Yo7RFPH0IGmzpJqy0tGvapXXQ.roa
File: f8Yo7RFPH0IGmzpJqy0tGvapXXQ.roa (raw, json)
Hash identifier: J7nCOdVaZoqAWkiUFIvuRwGKd7a5R+NjMnrmnhV/edI=
Subject key identifier: 7F:C6:28:ED:11:4F:1F:42:06:9B:3A:49:AB:2D:2D:1A:F6:A9:5D:74
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018DE64A58CD8A829F68DB21B40DBCDA2F02
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/f8Yo7RFPH0IGmzpJqy0tGvapXXQ.roa
Signing time: Mon 26 Feb 2024 16:40:48 +0000
ROA not before: Mon 26 Feb 2024 16:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 07:39:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:4a:58:cd:8a:82:9f:68:db:21:b4:0d:bc:da:2f:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Feb 26 16:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fc628ed114f1f42069b3a49ab2d2d1af6a95d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:12:3b:b5:8e:f1:7f:73:b2:43:fc:e9:52:bb:
cf:7d:8f:d0:82:54:dc:c3:1f:4e:77:d9:da:a4:42:
71:4e:26:e6:d9:fc:f8:99:b5:3f:07:9f:f9:88:09:
6f:93:50:4e:5b:48:61:da:25:bc:1a:8c:60:6d:ac:
09:f6:de:bb:cc:13:19:c8:c5:e7:f8:e9:ed:2c:39:
d3:3c:90:f6:af:6d:ba:c0:cb:9c:55:19:c3:22:2a:
da:2f:d2:ae:ab:bc:cc:23:93:95:51:4c:14:d1:96:
49:2c:9c:51:04:bd:39:b5:af:66:c8:14:1e:42:40:
e8:e8:44:c4:57:2b:65:f7:80:d6:81:2c:ad:8a:e4:
ac:b7:b5:12:80:20:84:10:76:d8:b5:92:34:1a:07:
5c:7b:fd:68:66:4c:37:ca:89:2c:49:03:05:84:0d:
e8:70:7f:a5:bc:e1:39:74:97:67:a3:d7:0e:fa:70:
29:c9:c9:bc:ca:75:3b:e0:9b:fa:30:30:db:fa:d0:
61:d3:48:53:56:2b:15:d4:64:d0:c2:f7:35:79:c3:
c4:bc:da:da:84:ec:78:5f:d3:fa:19:d8:66:97:23:
f7:98:ef:9b:9d:e6:30:00:61:7f:b3:79:63:b4:29:
08:24:ad:e6:7e:e3:c9:55:5a:a2:d6:2e:9e:23:d7:
c4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C6:28:ED:11:4F:1F:42:06:9B:3A:49:AB:2D:2D:1A:F6:A9:5D:74
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/f8Yo7RFPH0IGmzpJqy0tGvapXXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:09:e9:57:49:6f:9e:01:54:ce:f7:fd:b2:e0:35:57:cb:1e:
d3:66:78:c3:a8:9b:b8:ab:7c:a3:2b:17:ab:55:8a:93:2f:d1:
27:58:1e:1a:10:a1:30:b7:47:19:6c:55:d2:ee:bd:9b:00:36:
7b:fb:d3:d2:6e:32:ad:a5:50:b8:0f:e0:31:cc:3a:40:88:3f:
24:86:5e:38:bd:55:fe:4c:20:e8:9a:dc:3b:b9:d7:a7:ad:fe:
57:8e:7c:24:02:25:2d:ee:69:4f:ec:eb:e3:3d:1d:e8:ec:28:
51:d0:9d:9a:e6:7d:27:50:ce:f0:5a:1c:93:8a:f1:0e:9a:58:
39:f3:7a:db:e5:17:74:3e:af:87:7d:76:a5:97:9b:b1:e6:33:
50:b3:fb:8c:b5:29:1b:c8:12:a7:19:1a:3f:2b:51:21:12:37:
28:e9:3a:cb:18:cc:ae:85:b3:b5:87:1f:e2:8f:e3:03:b6:5d:
7a:3b:4c:a1:59:28:a6:cc:eb:e1:ba:18:ce:c1:f1:75:7d:a3:
f6:83:75:02:93:d5:e5:e8:0f:8d:8c:a0:1b:4e:0a:e2:25:ba:
60:c8:ee:68:56:da:9d:a7:ff:7e:ad:58:5d:13:9a:3d:f5:63:
2a:28:a5:4f:8d:56:a2:44:f3:4a:b8:de:a3:c7:4d:38:ff:08:
c2:11:97:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org